Scanmie
Start free trial

Privacy Policy

Last updated June 19, 2026

This Privacy Policy explains how Scanmie handles personal data when you visit our website, create an account, or use our QR code menu and table-ordering service. We act as the data controller for account and website data, and as a data processor for the menu and order data our restaurant customers manage through the platform.

1. Who we are

Scanmie (“Scanmie”, “we”, “us”) provides QR code menus, table ordering, and a kitchen display for food and drink businesses. Scanmie is operated by [Legal entity name], registered at [registered address]. For any privacy question, contact us at hello@scanmie.com.

2. Information we collect

We collect the following categories of information:

  • Account data — name, email address, and password (stored hashed) when you sign up, plus your restaurant’s name and settings.
  • Menu and business content — menus, dish descriptions, photos, prices, and table configurations you add to the platform.
  • Order data — items ordered, table number, order notes, and timing, submitted by diners through a restaurant’s public menu. We do not require diners to create an account.
  • Payment data — when you subscribe, billing is handled by our payment provider (Creem). We receive subscription status and limited billing metadata; we do not store full card numbers.
  • Usage and device data — pages viewed, approximate location derived from IP, browser and device type, and similar analytics data.
  • Support communications — messages you send us by email.

3. How we use information

We use personal data to:

  • Provide, operate, and maintain the service, including authentication and delivering orders to the kitchen display.
  • Process subscriptions and send transactional emails (for example, welcome and account notifications).
  • Monitor, debug, and improve the service, and keep it secure and available.
  • Respond to support requests and communicate service changes.
  • Comply with legal obligations.

4. Legal bases for processing (EEA/UK)

Where the GDPR or UK GDPR applies, we rely on: performance of a contract (to provide the service you sign up for); legitimate interests (to secure, improve, and analyse the service); consent (for non-essential analytics cookies, where required); and legal obligation (for example, to keep billing records).

5. Cookies and analytics

We use essential cookies to keep you signed in and to operate the service. We also use Google Analytics to understand how the website and product are used. You can control cookies through your browser settings; blocking essential cookies may break parts of the service.

6. Service providers (subprocessors)

We share data with vendors who process it on our behalf, under contract and only as needed to run the service:

  • Supabase — authentication, database, and image storage.
  • Creem — subscription billing and payment processing.
  • Resend — transactional and account emails.
  • Google Analytics — website and product analytics.
  • Sentry — error monitoring and diagnostics.
  • Upstash — rate limiting and caching.

7. How we share information

We do not sell personal data. We share it only with the subprocessors above, with a restaurant for the orders placed at its venue, and where required by law or to protect our rights. If Scanmie is involved in a merger or acquisition, data may be transferred as part of that transaction.

8. International transfers

Our providers may process data outside your country, including in the United States. Where required, such transfers are protected by appropriate safeguards such as the European Commission’s Standard Contractual Clauses.

9. Data retention

We keep account and menu data for as long as your account is active. After you close your account we delete or anonymise personal data within a reasonable period, except where we must retain it to meet legal, tax, or accounting obligations. Order data is retained on behalf of the restaurant per its own settings.

10. Your rights

Depending on where you live, you may have the right to access, correct, delete, or export your personal data, to object to or restrict certain processing, and to withdraw consent. To exercise these rights, email hello@scanmie.com. You also have the right to complain to your local data protection authority. For data held on behalf of a restaurant, please contact that restaurant directly.

11. Security

We use industry-standard measures — encryption in transit, hashed passwords, access controls, and row-level security on our database — to protect personal data. No method of transmission or storage is completely secure, but we work to protect your information and to notify you and the relevant authorities of breaches where required.

12. Children

The service is intended for businesses and is not directed to children under 16. We do not knowingly collect personal data from children.

13. Changes to this policy

We may update this policy from time to time. We will post the new version here and update the “Last updated” date. Material changes will be communicated where appropriate.

14. Contact us

Questions about this policy or your data? Email hello@scanmie.com.